Scientific Linux Security Update : kernel on SL4.x i386/x86_64
Medium Nessus Plugin ID 60689
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionCVE-2009-3547 kernel: fs: pipe.c NULL pointer dereference
This update fixes the following security issues :
- a NULL pointer dereference flaw was found in each of the following functions in the Linux kernel:
pipe_read_open(), pipe_write_open(), and pipe_rdwr_open(). When the mutex lock is not held, the i_pipe pointer could be released by other processes before it is used to update the pipe's reader and writer counters. This could lead to a local denial of service or privilege escalation. (CVE-2009-3547, Important)
The system must be rebooted for this update to take effect.
SolutionUpdate the affected packages.